摘要
大规模网络扫描在网络安全领域有许多应用,包括漏洞发现,追踪采取的网络防御机制等。但是,现有的网络扫描工具在大规模网络扫描方面存在使用困难和速度缓慢的问题。本文在对主流的网络扫描技术和主流的网络扫描工具的深入研究与分析的基础上,设计实现了针对大规模网络的高速扫描系统。系统基于zmap工具的高速扫描技术,设计整合了存活性扫描、端口扫描和应用层服务扫描等全面多样的扫描功能,其扫描速度和功能完整性相对传统扫描工具有了较大提高。本文还对多种扫描应用场景进行了验证与实验分析,结果显示本系统相对传统方法效率提高显著。
Large-scale network scanning has many network security applications,including vulnerability discovery and tracking network defense mechanisms. However,the existing network scanning tools have some difficulties and slowness in terms of largescale network scanning. Based on the research and analysis of widely used network scanning technology and tools,the paper designs a large-scale network scanning system. This system is based on the scanning technology of zmap,and implements variety of scanning mode such as survivability scanning,port scanning,application-level service scanning and so on. Compared with traditional tools,scanning speed and functional completeness of this system have been greatly improved. Finally,the paper conducts multiple tests in different scanning application scenes,and the experimental results showthat the efficiency of the system is much higher than that of traditional tools.
作者
郝科委
余翔湛
赵洋
HAO Kewei;YU Xiangzhan;ZHAO Yang(School of Computer Science and Technology,Harbin Institute of Technology,Harbin 150001,China)
出处
《智能计算机与应用》
2018年第5期112-117,共6页
Intelligent Computer and Applications
基金
国家自然科学基金(61771166)
国家重点研发计划项目(2016QY05X1000)
关键词
大规模网络
网络扫描
高速
large-scale network
network scanning
high-speed
